SHA256MediumSignal 51/100
48047c34bbd57fe1e24bc538bc2ce9e0ac4c4eb48d3b0c195b414f0379dc0745
First Seen
Jun 4, 2026
Last Seen
Jun 7, 2026
Found in 3 reports. Confidence: medium. · Confidence scores are heuristic. Verify before acting on results.
SHA-256 Hash
SHA-256 file hash — primary identifier for malware samples.
MISP Category
Artifacts Dropped
Hash Algorithm
SHA256
Confidence
51%
Signal Score
51 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK
MITRE ATT&CK TTPs
Feed Intelligence Summary
3 reports51% confidence
3
Source reports
51%
Confidence score
Category tags
backdoorbrowser hijackingexploitation activityfile-hashflutterbridgefluttershellgoogle adsindicatorjavascript bridgemacosmalvertisingmalwareransomwarerecipelisterresearchedshell companiest1005t1027t1036t1041t1059.004t1071.001t1082t1083t1106t1176t1185t1189t1204t1539t1543.001t1547.001t1553.002t1555.003t1566t1573
Activity Timeline
Jun 7Jun 7
Threat Activity Heatmap
· Peak: 2026-06-07LessMore
Mon
Wed
Fri
24h
0
Dormant
7d
0
Dormant
30d
1
Minimal
3mo
1
Minimal
Intelligence SummaryAI Generated
This Indicator of Compromise (IOC) represents a significant threat, identified as a SHA-256 hash linked to the Operation FlutterBridge macOS malvertising campaign and the FlutterShell backdoor. Its presence within an organizational environment points towards a potential compromise involving sophisticated malware designed for data exfiltration, browser session hijacking, and persistent command and control. If left unaddressed, this threat could lead to unauthorized access to sensitive data, crede…
Threat ScoreMedium Risk
51
SIGNAL
Signal Score
51%
Confidence
3
Reports
First seenJun 4, 2026
Last seenJun 7, 2026
VirusTotal
Not checked
WHOIS
- references
- https://unit42.paloaltonetworks.com/flutterbridge-new-fluttershell-backdoor/
Export & API
STIX 2.1 Bundle
CSV Export
Permalink
IOC Journey
mediumFirst detected 13 days ago · Last seen 9 days ago
Appeared in 3 threat reports